10 matches found
EUVD-2016-7364
Malware in sbrugna...
CVE-2021-34696 Cisco ASR 900 and ASR 920 Series Aggregation Services Routers Access Control List Bypass Vulnerability
A vulnerability in the access control list ACL programming of Cisco ASR 900 and ASR 920 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to incorrect programming of hardware when an ACL is configured using a...
Cisco IOS XE Software for ASR 900 Series Route Switch Processor 3 Arbitrary Code Execution (cisco-sa-iosxe-rsp3-rce-jVHg8Z7c)
According to its self-reported version, IOS-XE for Cisco ASR 900 Series Aggregation Services Routers is affected by multiple vulnerabilities due to incorrect validations by boot scripts when specific ROM monitor ROMMON variables are set. An authenticated, local attacker with high privileges to...
Cisco IOS XE Arbitrary Code Execution Vulnerability (CNVD-2021-43442)
Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. An arbitrary code execution vulnerability exists in the initialization routines of Cisco IOS XE used by the Cisco ASR 900 Series Aggregation Services Routers, which can be exploit...
Design/Logic Flaw
Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 RSP3 installed could allow an authenticated, local attacker with high privileges to execute...
Cisco ASR 900 Cisco IOS XE Input Validation Error Vulnerability
The Cisco ASR 900 is a 900-series aggregation services router from Cisco, Inc.Cisco IOS XE is an operating system developed for Cisco network devices. An input validation error vulnerability exists in the Raw Socket Transport feature of Cisco IOS XE version 16.9 in the Cisco ASR 900 series, which...
The vulnerability of Cisco ASR 900 router microprogramming software, related to uncontrolled resource consumption, allows a hacker to trigger a service failure.
The vulnerability of Cisco ASR 900 microprogrammed software lies in the uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause partial service interruptions by sending a large number of broadcast packets to the vulnerable device...
CVE-2016-6441
A vulnerability in the Transaction Language 1 TL1 code of Cisco ASR 900 Series routers could allow an unauthenticated, remote attacker to cause a reload of, or remotely execute code on, the affected system. This vulnerability affects Cisco ASR 900 Series Aggregation Services Routers ASR902, ASR90...
Design/Logic Flaw
A vulnerability in the Transaction Language 1 TL1 code of Cisco ASR 900 Series routers could allow an unauthenticated, remote attacker to cause a reload of, or remotely execute code on, the affected system. This vulnerability affects Cisco ASR 900 Series Aggregation Services Routers ASR902, ASR90...
Cisco ASR 900 Series Aggregation Services Routers Buffer Overflow Vulnerability
A vulnerability in the Transaction Language 1 TL1 code of Cisco ASR 900 Series routers could allow an unauthenticated, remote attacker to cause a reload of, or remotely execute code on, the affected system. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a...